|
|||||
<
/td>
|
Job Description: Job Title: Network Operations SpecialistSecurity Clearance Required: TS/SCI w/ polygraph Job Description: Analyzes and evaluates network/system architectures and implements Defense in Depth practices. Develops system baselines and conducts periodic analysis to validate that integrity of the system has not been compromised thru unauthorized means. Implements appropriate mitigation rule sets for signature and behavior based anomalies in an effort to gauge and define suspicious activity. Researches and develops mitigation strategies for latest reconnaissance, scanning and gaining access techniques. Utilizes various open source and COTS tools to conduct vulnerability analysis. Mentors team members on use of mission resources. Consolidates findings and creates formal reports for appropriate audience. Conducts forensics analysis on network attacks thru use of various tools to identify where unauthorized access or malicious signatures infected the network. Develops appropriate mitigation strategy by recreating the events offline and applying mitigation strategies at the appropriate layer of the Defense in Depth model. Researches suspicious system signatures to understand true nature/intent of signature and develop mitigation controls. Performs/captures forensic images thru use of multiple techniques to determine if an incident occurred along with method used. Conducts periodic tests to evaluate operational system and network configurations to validate that latest secure practices are implemented. Conducts deep inspection packet analysis thru use of various GOT/COTS tools. Consolidates findings and creates formal reports for appropriate audience. Experience Requirements: Work experience shall include a minimum of two years of Intelligence Community experience in computer network operations or a related field. Higher levels of experience or education may qualify for more senior positions. Senior Level position requires (8 yrs of CNO or 5 yrs w/ BS, 5 yrs of IC Exp) • Network hardware and multiple OS experience (Routers/Switches/Firewalls, Windows, Linux) • Understanding for Defense in depth architectures • Understanding of monitoring platforms • Familiarity with detecting anomalies (signature and behavior based/gauge and define suspicious trends) • Familiarity with open source tools, vulnerability analysis tools • Ability to consolidate findings into various report formats for appropriate audiences • Provide training to team members on use of mission resources as they mature for effort • Familiar with six phases of hacker methodology (reconnaissance, scanning, gaining access, escalation of privilege, maintaining access, covering tracks/backdoors • Tier two/three NOC or SOC experience a plus • SIGINT experience a plus • Understand network attack characterization and reconstruction, and develop/implement appropriate mitigation strategies. • Understanding of Defense in Depth. • Ability to interpret unauthorized/suspicious intrusion and recreate events offline to implement mitigation strategies at appropriate layers. • Familiar with commercial forensics tools, such as Encase, Forensics Tool Kit (FTK) • Understanding of capturing forensic images and review of artifacts/findings to determine if an incident occurred along with the intrusion method used. • Familiar with multiple operating systems, network configurations, network architectures and topologies for potential technical and/or operational vulnerabilities. • Knowledge of GOTS/COTS/Open Source tools used to assess traffic at OSI L7, with the ability to identify and interpret activity in packet details. • Familiar with open source IDS/IPS and the ability to generate appropriate rule sets for environment. • Familiar with commercial and open source tools to interpret and analyze technical data. • Understanding of Chain of custody • Understanding of cryptographic hashes • Familiar with evidence gathering, collections, and analysis toolkits Education Requirements: Masters with min 10 years or Bachelors with min 12 years or equivalent professional work experience.
An Equal Opportunity Employer M/F/D/V |
||||||||||||||
|
||||||||||||||
|
